Re: [Omail-devel] omail suggestions
Brought to you by:
swix
Menu
▾
▴
Re: [Omail-devel] omail suggestions
|
From: Bryan B. <ba...@ne...> - 2002-12-02 00:36:48
|
I used setuid perl so that the omail could run under the uid and gid of my vpopmail user. Unforunately that meant I needed to comment out the logging functions since they used 'open FILE ">some.log"' which setuid perl sees as tainted (this is why I think they where using the sudo mess). All of these opens would need to be changed or better yet moved inside of a single function which uses "open FILE '-| some.log'" This causes a forked open with a pipe that runs under apaches uid. After thinking about it, a fork of the omail code may be too harsh. I think your on the right track with a separation of various parts of omail. We could design it so their is a module for standard password/shadow, one for vmailmgr, and one for vpopmail. I would be willing to work on the vpopmail one since that is what I use. I like vpopmail because each virtual domain is self contained in its own directory with its own passwd file and maildir space. All of the domains are owned by the same user. This make moving them around much easier and means the whole setup is simpler. The whole LDAP or database setup sounds good, but has always made things more complicated for automation and support in my experience. On Sun, 2002-12-01 at 18:12, Carter Smithhart wrote: > On Sun, 2002-12-01 at 15:49, Bryan Ballard wrote: > > I agree with your ideas I think a lot could be down to make it better. > > The sudo junk was what I started to change. Really bad way to do things. > > not sure why they didn't use -| and -|. > > -| and -|? You gotta fill me in... What exactly are you referring to? > > > On Sun, 2002-12-01 at 17:22, Carter Smithhart wrote: > > > On Sun, 2002-12-01 at 11:47, Bryan Ballard wrote: > > > > I don't think much has been going on. I have taken Omail and changed it > > > > pretty far, so it would work in my vpopmail hosting system. What kind of > > > > changes are you wanting to do. If it involves vpopmail I would be > > > > willing to maybe talk about a fork. > > > > On Sat, 2002-11-30 at 03:03, Carter Smithhart wrote: > > > > > Olivier (and all), > > > > > > > > > > Is there any omail development currently underway? > > > > > > > > > > Whether or not there is, after looking at the code, I believe I could > > > > > make several changes to improve portions of omail. > > > > > > > > > > What does everybody think about the following changes: > > > > > > > > > > 1) move configuration information from scripts to single configuration > > > > > file > > > > > 2) add .htaccess file (for added apache security) > > > > > 3) remove necessity of sudo > > > > > (reimplement sudo usage with groups or some other mechanism) > > > > > 4) implement different authentication methods as perl modules with > > > > > defined interface > > > > > 5) break up the 4k and 1.5k line scripts into more manageable perl > > > > > modules. (this would lend itself to allowing UI customization) > > > > > > > > > > I might be going a bit overboard, but I want some feedback. > > > > > > > > > > Carter -- Bryan Ballard Netsolus Consultants http://www.netsolus.com |